gfriendgietrebver.ga/
2 B IP
ASN #133618 Trellian Pty. Limited
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
GET / HTTP/1.1
Host: gfriendgietrebver.ga
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
date: Sat, 04 Nov 2023 21:30:04 GMT
server: Apache
set-cookie: __tad=1699133404.3011532; expires=Tue, 01-Nov-2033 21:30:04 GMT; Max-Age=315360000
location: http://ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
content-length: 2
content-type: text/html; charset=UTF-8
connection: close
ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
1.2 kB URL ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (462)
Hash 2e26d1c209eb341edbcd5655cec53596
b548b8285d1f5c483e5fe5c8e4e192a053a81c32
937ec61244cbddeca8cb44a8d1d11d950c69d384390367a6d0ec3acdd7d14415
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ga domain
GET /?subid1=20231105-0830-0496-be1f-e1db36741564 HTTP/1.1
Host: ww25.gfriendgietrebver.ga
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 Nov 2023 21:30:04 GMT
content-type: text/html; charset=utf-8
content-length: 1165
x-request-id: 8187af86-1f94-47b0-904e-ae31caca5841
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_U4Bs6QFVVEtdZG7L53q1Uk71K0T+PHVJ6Z+HeqNDczY+9k5uEJI5rIUWuMYVRR4vXw5Q1FTGBU+PE2Vtr1MOPw==
set-cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841; expires=Sat, 04 Nov 2023 21:45:05 GMT; path=/
ww25.gfriendgietrebver.ga/brWWbSeIA.js
32 kB URL ww25.gfriendgietrebver.ga/brWWbSeIA.js
IP
File type Unicode text, UTF-8 text, with very long lines (32099)
Hash 6ebd59b2d273cf49366bb4c4cd13faf0
36c1815062aeb1a99220b1abe338e5aaf02dd2ba
7b599318da054f1d77c5b0882c18aa908234c5a32c79b28c791ffafdca11516e
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ga domain
GET /brWWbSeIA.js HTTP/1.1
Host: ww25.gfriendgietrebver.ga
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
Cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 04 Nov 2023 21:30:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 32102
x-request-id: 5a3b04c9-f1ed-4490-97aa-c14c53753c52
set-cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841; expires=Sat, 04 Nov 2023 21:45:05 GMT
ww25.gfriendgietrebver.ga/_fd?subid1=20231105-0830-0496-be1f-e1db36741564
468 B URL ww25.gfriendgietrebver.ga/_fd?subid1=20231105-0830-0496-be1f-e1db36741564
IP
File type ASCII text, with very long lines (621), with no line terminators
Hash db7dd0db971ffd7ac8e75d9c8e7e1c52
e227bf8392222861435c8d64addc7b2a27286162
b4c18b73c33db1bdba66a0f940e5cf48833fb2f0a21ec428f26789e2aa62a53c
NIDS Severity Alert suricata medium ET INFO HTTP POST Request to Suspicious *.ga Domain
suricata medium ET INFO HTTP Request to a *.ga domain
POST /_fd?subid1=20231105-0830-0496-be1f-e1db36741564 HTTP/1.1
Host: ww25.gfriendgietrebver.ga
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
Content-Type: application/json
Origin: http://ww25.gfriendgietrebver.ga
DNT: 1
Connection: keep-alive
Cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Nov 2023 21:30:05 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
content-length: 468
x-version: 2.110.2
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841; expires=Sat, 04 Nov 2023 21:45:05 GMT; Max-Age=900; path=/; httponly
ww25.gfriendgietrebver.ga/_zc
158 B URL ww25.gfriendgietrebver.ga/_zc
IP
File type ASCII text, with no line terminators
Hash 57a616ed7a4739ecb4b9fec9a5658606
3fac681620164f91061d80f7abca6d6d425c26b5
d11a4f0192322d1de79d94aba9ae6a50a483b196f413c851915caca17d80c6e5
POST /_zc HTTP/1.1
Host: ww25.gfriendgietrebver.ga
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww25.gfriendgietrebver.ga/?subid1=20231105-0830-0496-be1f-e1db36741564
Content-Type: application/json
Content-Length: 1821
Origin: http://ww25.gfriendgietrebver.ga
DNT: 1
Connection: keep-alive
Cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Nov 2023 21:30:05 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
content-length: 158
x-version: 2.110.2
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: parking_session=8187af86-1f94-47b0-904e-ae31caca5841; expires=Sat, 04 Nov 2023 21:45:06 GMT; Max-Age=900; path=/; httponly
iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
200 OK 36 kB URL User Request GET HTTP/1.1 iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10752), with CRLF, LF line terminators
Hash fdcb7b3ad96c996a865116a89af57cf4
8b7c3ddb8881352af5648add2ea6037502b405c5
fae65272170dfda81a66eb674d8583b386e0ebeb8b479bfc491ada59fa3416cb
GET /?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww25.gfriendgietrebver.ga/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:07 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_T7OcVlIt7LdSQNMe941lntbQqi1XwB66Fl9RAIHPfp/Wz1MuPhmvpIC/h8Dx58049wWrPOxvSQzNK+dDmnEikg==
Keep-Alive: timeout=5, max=124
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
iyfbodn.com/px.js?ch=1
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=1 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&o=1699133408312
200 OK 636 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&o=1699133408312
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint98:31:33:A5:63:E2:87:E8:65:E9:6F:DB:F0:5E:13:E0:D9:CA:5A:0D
ValidityFri, 15 Sep 2023 23:31:50 GMT - Thu, 14 Dec 2023 23:31:49 GMT
File type ASCII text, with very long lines (420), with CRLF line terminators
Hash 457ebca0b2e71d6711a40f9108a0e15a
3a2bbb16d8f7ce561182406ce59afd5679e19ebb
ee74ec70ed6bcb5ce422608dcc7b07f7762bd3725e33d5e43719df28a14f3a2f
GET /delivery/cmp.php?&cdid=21fdca2281833&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&o=1699133408312 HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sat, 04 Nov 2023 21:30:08 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
200 OK 638 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint98:31:33:A5:63:E2:87:E8:65:E9:6F:DB:F0:5E:13:E0:D9:CA:5A:0D
ValidityFri, 15 Sep 2023 23:31:50 GMT - Thu, 14 Dec 2023 23:31:49 GMT
File type ASCII text, with very long lines (420), with CRLF line terminators
Hash 9644ffebec3c30d2915d8374e323d162
421b78a635e9877babc6e16483744dd1b563397e
cd1e0e6e5a24f2f827aec55d0a167db2c330fd44eca18b616d8db07be8089943
GET /delivery/cmp.php?__cmpcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sat, 04 Nov 2023 21:30:08 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
200 OK 2.2 kB URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint98:31:33:A5:63:E2:87:E8:65:E9:6F:DB:F0:5E:13:E0:D9:CA:5A:0D
ValidityFri, 15 Sep 2023 23:31:50 GMT - Thu, 14 Dec 2023 23:31:49 GMT
File type ASCII text, with very long lines (3675), with CRLF, LF line terminators
Hash 35792d96df7a8189d25615236a71adcc
83200dffb4c9bc59db758a33ae899e6f9dc64479
be59a37e5e1ec59c82ea536c1c2fa694256ad3d9e1c6e86bbc0b1f2de2054cc0
GET /delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1699133408&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sat, 04 Nov 2023 21:30:08 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
iyfbodn.com/__media__/js/min.js?v2.3
200 OK 8.4 kB URL GET HTTP/1.1 iyfbodn.com/__media__/js/min.js?v2.3
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type ASCII text, with very long lines (8349), with CRLF line terminators
Hash c16c3a4c0fad29106f34d00e89f6886e
6e11811ab8a98bb295b0916cdee68b302c33403d
097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Thu, 16 Feb 2023 20:42:04 GMT
ETag: "20f3-5f4d73abb75da"
Accept-Ranges: bytes
Content-Length: 8435
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
iyfbodn.com/px.js?ch=2
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=2 HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=109
Connection: Keep-Alive
Content-Type: application/javascript
a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408709&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28&
200 OK 43 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408709&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28&
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint98:31:33:A5:63:E2:87:E8:65:E9:6F:DB:F0:5E:13:E0:D9:CA:5A:0D
ValidityFri, 15 Sep 2023 23:31:50 GMT - Thu, 14 Dec 2023 23:31:49 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408709&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sat, 04 Nov 2023 21:30:08 GMT
Content-Length: 43
Content-Type: image/gif
a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=27251&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408706&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28&
200 OK 43 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=27251&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408706&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28&
IP
ASN #61157 PlusServer GmbH
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint98:31:33:A5:63:E2:87:E8:65:E9:6F:DB:F0:5E:13:E0:D9:CA:5A:0D
ValidityFri, 15 Sep 2023 23:31:50 GMT - Thu, 14 Dec 2023 23:31:49 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=1&cfdid=27251&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26pid%3D9POT3387I%26pbsubid%3D8187af86-1f94-47b0-904e-ae31caca5841%26noads%3Dhttp%253A%252F%252Fiyfbodn.com%252F%253Fdn%253Dgfriendgietrebver.ga%2526skipskenzo%253Dtrue&o=1699133408706&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=14&dv=28& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sat, 04 Nov 2023 21:30:08 GMT
Content-Length: 43
Content-Type: image/gif
cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQuZF8yNjQxNS54XzI4LnYucA.js
200 OK 13 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQuZF8yNjQxNS54XzI4LnYucA.js
IP
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintEA:FC:CE:9D:19:C9:C5:2E:AF:6E:0F:FE:A3:6D:68:A2:29:C4:AA:FF
ValidityMon, 04 Sep 2023 13:45:16 GMT - Sun, 03 Dec 2023 13:45:15 GMT
File type gzip compressed data, from Unix\012- data
Hash 7f7089809ce070e3773a053a2c37b2b9
57552f145590a092dd272424b593f76acf0550d6
7ddb88d64a0ee78c8d8bb3593711cbe2ecc86e48a643b1a0c661a2281185dd5a
GET /delivery/customdata/bV8xLndfNjg4ODQuZF8yNjQxNS54XzI4LnYucA.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Nov 2023 21:30:08 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-xss-protection: 0
expires: Sat, 04 Nov 2023 21:39:56 GMT
cache-control: public, max-age=1800
edge-control: public, max-age=1800
last-modified: Sat, 04 Nov 2023 21:09:56 GMT
x-77-nzt: Anl/LVA3Nzf/ZwQAACUTwig3Nzf/VQAAAA
x-77-nzt-ray: c1fb981977147007e0b746650f973d26
x-accel-expires: @1699133996
x-accel-date: 1699132281
x-77-cache: HIT
x-77-age: 1212
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 1127
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
iyfbodn.com/__media__/pics/29590/bg1.png
200 OK 18 kB URL GET HTTP/1.1 iyfbodn.com/__media__/pics/29590/bg1.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type PNG image data, 1730 x 988, 4-bit colormap, non-interlaced\012- data
Hash 825ccd29ac102fcadaf92b2343d5917b
24472e766cfac5b82a73b219796556a0a3702bd6
0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd
GET /__media__/pics/29590/bg1.png HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Fri, 25 Nov 2022 12:16:35 GMT
ETag: "4642-5ee4a7e31c9c9"
Accept-Ranges: bytes
Content-Length: 17986
Keep-Alive: timeout=5, max=122
Connection: Keep-Alive
Content-Type: image/png
iyfbodn.com/sk-logabpstatus.php?a=SmZDVmdiaWkyTGM1cG5BYXBMYUh1R2NpWUFCbGtUNzlkSWhwTlVTZlg2bG9MbmVLOTMwMXVIbjdhODZYR0RGcGwvZEJtMEZVeldLMVcrL2dXclB2VFlaOWE2WGx3eFFyM25wdEswbjYxOTBLTTlMNUQ4aDJwUFdIOXVVbDR6bEE=&b=true
200 OK 0 B URL GET HTTP/1.1 iyfbodn.com/sk-logabpstatus.php?a=SmZDVmdiaWkyTGM1cG5BYXBMYUh1R2NpWUFCbGtUNzlkSWhwTlVTZlg2bG9MbmVLOTMwMXVIbjdhODZYR0RGcGwvZEJtMEZVeldLMVcrL2dXclB2VFlaOWE2WGx3eFFyM25wdEswbjYxOTBLTTlMNUQ4aDJwUFdIOXVVbDR6bEE=&b=true
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sk-logabpstatus.php?a=SmZDVmdiaWkyTGM1cG5BYXBMYUh1R2NpWUFCbGtUNzlkSWhwTlVTZlg2bG9MbmVLOTMwMXVIbjdhODZYR0RGcGwvZEJtMEZVeldLMVcrL2dXclB2VFlaOWE2WGx3eFFyM25wdEswbjYxOTBLTTlMNUQ4aDJwUFdIOXVVbDR6bEE=&b=true HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
iyfbodn.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
200 OK 17 kB URL GET HTTP/1.1 iyfbodn.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type Web Open Font Format, TrueType, length 17312, version 2.1\012- data
Hash bebe201d813feaad85a3e66607d0da3a
28b049502afa8e9db5340c1a92400591b39870e8
58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "43a0-5b952a63ce953"
Accept-Ranges: bytes
Content-Length: 17312
Keep-Alive: timeout=5, max=111
Connection: Keep-Alive
Content-Type: font/woff
iyfbodn.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
200 OK 17 kB URL GET HTTP/1.1 iyfbodn.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type Web Open Font Format, TrueType, length 17264, version 2.1\012- data
Hash a43b107861b42ce1335e41e43d4e4d00
99bdb1cec4a68ebe29249c46fefefb6880d009e5
a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "4370-5b952a63d1833"
Accept-Ranges: bytes
Content-Length: 17264
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff
iyfbodn.com/favicon.ico
404 Not Found 10 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type ASCII text, with no line terminators
Hash 6608dd3e21ca3beabd4bdfa625a0b221
e926d0f8694a4bc4013308afaca7af51e4c9fd9f
c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
GET /favicon.ico HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Sat, 04 Nov 2023 21:30:09 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
cdn.consentmanager.net/delivery/js/cmp_en.min.js
200 OK 558 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/js/cmp_en.min.js
IP
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintEA:FC:CE:9D:19:C9:C5:2E:AF:6E:0F:FE:A3:6D:68:A2:29:C4:AA:FF
ValidityMon, 04 Sep 2023 13:45:16 GMT - Sun, 03 Dec 2023 13:45:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 558 kB (558054 bytes)
Hash 37defaebf077a6eab8e5e0400079c744
d14da357d797b71590b53f6db41d2981005f8e5e
9aa77ef7b9836c4bac6a60462a984ad0e6d3a80ca94021a36044d7ca17f7a5a5
GET /delivery/js/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 Nov 2023 21:30:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 23 Oct 2023 11:41:44 GMT
etag: W/"883e6-60860b4d4ee00"
cache-control: max-age=86400
expires: Tue, 24 Oct 2023 11:52:47 GMT
x-77-nzt: Anl/LVA3Nzf/QocAANRmOAk3Nzex
x-77-nzt-ray: c1fb981977147007e0b746655ccd5c1c
x-77-cache: HIT
content-encoding: gzip
server: CDN77-Turbo
x-accel-expires: @1699185182
x-accel-date: 1699098782
x-cache-lb: HIT
x-age-lb: 34626
x-77-pop: copenhagenDK
x-77-age: 34626
X-Firefox-Spdy: h2
cdn.consentmanager.net/delivery/recall/logos/68884
301 Moved Permanently 4.2 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/recall/logos/68884
IP
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintEA:FC:CE:9D:19:C9:C5:2E:AF:6E:0F:FE:A3:6D:68:A2:29:C4:AA:FF
ValidityMon, 04 Sep 2023 13:45:16 GMT - Sun, 03 Dec 2023 13:45:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /delivery/recall/logos/68884 HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 04 Nov 2023 21:30:08 GMT
content-type: text/javascript; charset=utf-8
expires: Sun, 05 Nov 2023 11:53:45 GMT
cache-control: public, max-age=86400
edge-control: public, max-age=86400
location: /delivery/whitelabel/cmplogo.svg
x-77-nzt: Anl/LVA3Nzf/BocAANRmOAk3Nzf/EQAAAA
x-77-nzt-ray: c1fb981977147007e0b746656349d429
x-accel-expires: @1699185225
x-accel-date: 1699098842
x-77-cache: HIT
x-77-age: 34583
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 34566
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
iyfbodn.com/__media__/pics/28905/arrrow.png
200 OK 283 B URL GET HTTP/1.1 iyfbodn.com/__media__/pics/28905/arrrow.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subjectiyfbodn.com
Fingerprint4A:65:17:D3:C4:E2:F9:D6:F4:DC:3B:75:0C:AF:80:D9:4F:D9:85:48
ValidityWed, 20 Sep 2023 09:15:53 GMT - Tue, 19 Dec 2023 09:15:52 GMT
File type PNG image data, 17 x 27, 8-bit colormap, non-interlaced\012- data
Hash 80d42c82a6c37da90210fd60a2f36128
554ba7c84d2a27ecf3b1f29d03e62101936b54d8
a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: iyfbodn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Cookie: __cmpcc=1; __cmpconsentx68884=CP0t18AP0t18AAfN0BENDeCgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP0wy7HAAADgAXACCAF4BxIEHAVEAqWAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Nov 2023 21:30:08 GMT
Server: Apache
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
ETag: "11b-5d4c2ac970ed9"
Accept-Ranges: bytes
Content-Length: 283
Keep-Alive: timeout=5, max=114
Connection: Keep-Alive
Content-Type: image/png
cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
200 OK 4.2 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
IP
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintEA:FC:CE:9D:19:C9:C5:2E:AF:6E:0F:FE:A3:6D:68:A2:29:C4:AA:FF
ValidityMon, 04 Sep 2023 13:45:16 GMT - Sun, 03 Dec 2023 13:45:15 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (4425), with no line terminators
Hash 46d40c431f8e14f71ab8f2f31eee942b
4f2140ab124f17c65f4a1d7998301b4747d1f87b
042c930c16842f0c1a14d5c16d23429d075c1ebdd16cad3ddd6f0d94ab0ae0ae
GET /delivery/whitelabel/cmplogo.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iyfbodn.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 Nov 2023 21:30:08 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Wed, 03 May 2023 16:01:17 GMT
etag: W/"104c-5facc2a822d40"
cache-control: max-age=31536000
expires: Mon, 21 Oct 2024 15:27:42 GMT
x-77-nzt: Anl/LVA3Nzf/UVkQANRmOAk3Nzf/IR8BAA
x-77-nzt-ray: c1fb981977147007e0b7466518e3382c
x-accel-expires: @1729524462
x-accel-date: 1698061967
x-77-cache: HIT
x-77-age: 1144946
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 1071441
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
cdn.consentmanager.net/delivery/flags-square/en.svg
200 OK 32 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/flags-square/en.svg
IP
Requested by https://iyfbodn.com/?dn=gfriendgietrebver.ga&pid=9POT3387I&pbsubid=8187af86-1f94-47b0-904e-ae31caca5841&noads=http%3A%2F%2Fiyfbodn.com%2F%3Fdn%3Dgfriendgietrebver.ga%26skipskenzo%3Dtrue
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintEA:FC:CE:9D:19:C9:C5:2E:AF:6E:0F:FE:A3:6D:68:A2:29:C4:AA:FF
ValidityMon, 04 Sep 2023 13:45:16 GMT - Sun, 03 Dec 2023 13:45:15 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash 10c6e579553a382bfb4abf6f074e9e68
bc02899da9a57b21c584bcf75799fa1c9bcf68f4
36a01c14fbed3d5f50c6a103ac487e2b173e2025d74fbfdf4c443b0e87b4dfe0
GET /delivery/flags-square/en.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iyfbodn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 Nov 2023 21:30:08 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 15 Jul 2022 22:28:50 GMT
etag: W/"7b29-5e3df8ad54c80"
cache-control: max-age=31536000
expires: Tue, 22 Oct 2024 11:53:21 GMT
x-77-nzt: Anl/LVA3Nzf/+FcQANRmOAk3Nzf/NwEAAA
x-77-nzt-ray: c1fb981977147007e0b74665f695fb2b
x-accel-expires: @1729598001
x-accel-date: 1698062312
x-77-cache: HIT
x-77-age: 1071407
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 1071096
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
103.224.182.210
87.230.98.74
121.127.45.81
199.59.243.225
208.91.196.46